Artius Solutions is Hiring an IT Auditor - Data Center Operations Near Alaska, AK
Position: Technology Audit Contractor Client: Major Consulting Firm Project: Support a Major Financial Institution on a Technology Audit Contract Duration: ASAP until 12/31/2024, with potential for extension Location: Remote OverviewOur client, a leading consulting firm, is seeking an experienced Technology Audit Contractor to support a major financial institution in conducting a comprehensive internal technology audit. This role will focus on assessing and validating controls related to Data Center operations, Active Directory management, Privileged Access, CI/CD Pipeline processes, FFIEC Cybersecurity Assessment Tool (CAT) compliance, Firewall Configuration, Splunk utilization, and Privileged Access Management (PAM) practices. Key Responsibilities
Conduct detailed audits of Data Center controls, including physical security, environmental controls, and redundancy/failover mechanisms.
Assess Active Directory configurations and controls, including user management, group policies, and security settings.
Evaluate Privileged Access Management (PAM) practices, ensuring compliance with industry standards and best practices.
Review and validate CI/CD Pipeline controls, focusing on secure code deployment, version control, and access restrictions.
Assess the financial institution's adherence to FFIEC CAT guidelines, identifying areas of risk and recommending improvements.
Examine Firewall configurations, rule sets, and change management processes to ensure proper network security controls.
Utilize Splunk for log analysis, monitoring, and reporting on security incidents and control effectiveness.
Document findings, provide clear and actionable recommendations, and support the remediation of identified issues.
Collaborate with internal stakeholders, including IT, Security, and Compliance teams, to ensure a comprehensive audit approach.
Prepare and present audit reports to senior management and other relevant stakeholders.
Qualifications
Bachelor's degree in Information Technology, Cybersecurity, or a related field.
A minimum of 5 years of experience in technology auditing, IT risk management, or a related field within the financial services industry.
Strong understanding of Data Center controls, Active Directory, Privileged Access Management, CI/CD Pipeline processes, and Firewall Configuration.
Familiarity with FFIEC CAT and its application in financial institutions.
Proficiency in using Splunk for data analysis and security monitoring.
Relevant certifications such as CISA, CISSP, CRISC, or equivalent are highly desirable.
Excellent analytical skills with the ability to identify risks and propose effective solutions.
Strong communication skills, with the ability to clearly articulate audit findings and recommendations.
Self-motivated and capable of working independently in a remote environment.
Contract Details
This is a remote position, offering flexibility and the opportunity to work from home.
The contract is set to run until 12/31/2024, with the possibility of extension based on project needs and performance.